Poly Security - Firewall Traversal User guide

Type
User guide

This manual is also suitable for

2.2 | March 2011 | 3725-76302-001E1
Polycom
®
DMA
7000 System
Operations Guide
© 2009-2010 Polycom, Inc. All rights reserved.
Polycom, Inc.
4750 Willow Road
Pleasanton, CA 94588-2708
USA
No part of this document may be reproduced or transmitted in any form or by any means, electronic or
mechanical, for any purpose, without the express written permission of Polycom, Inc. Under the law, reproducing
includes translating into another language or format.
As between the parties, Polycom, Inc., retains title to and ownership of all proprietary rights with respect to the
software contained within its products. The software is protected by United States copyright laws and international
treaty provision. Therefore, you must treat the software like any other copyrighted material (e.g., a book or sound
recording).
Every effort has been made to ensure that the information in this manual is accurate. Polycom, Inc., is not
responsible for printing or clerical errors. Information in this document is subject to change without notice.
ii
Trademark Information
Polycom®, the Polycom “Triangles” logo, and the names and marks associated with Polycom’s products are
trademarks and/or service marks of Polycom, Inc., and are registered and/or common-law marks in the United
States and various other countries.
All other trademarks are the property of their respective owners.
Java is a registered trademark of Oracle and/or its affiliates.
Patent Information
The accompanying product is protected by one or more U.S. and foreign patents and/or pending patent
applications held by Polycom, Inc.
End User License Agreement
Use of this software constitutes acceptance of the terms and conditions of the Polycom DMA 7000 system end-user
license agreement (EULA).
The EULA is included in the release notes document for your version, which is available on the Polycom Support
page for the Polycom DMA 7000 system.
Polycom, Inc. iii
Contents
1 Polycom
®
DMA
7000 System Overview . . . . . . . . . . . . . 1
Introduction to the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . 1
Polycom Solution Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Working in the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3
Open Source Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
2 Polycom
®
DMA
System Initial Configuration Summary . . 11
Add DNS Records for Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . 12
License the Polycom DMA System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
Configure Signaling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
Set Up Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
Set Up MCUs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
Connect to an Enterprise Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Set Up Conference Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Test the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
3 System Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Management and Security Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
How Certificates Work . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Forms of Certificates Accepted by the Polycom DMA System . . . . . . 20
How Certificates Are Used by the Polycom DMA System . . . . . . . . . 21
Frequently Asked Questions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Certificate Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Certificate Information Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Certificate Signing Request Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 24
Add Certificates Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Certificate Details Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
Certificate Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Install a Certificate Authority’s Certificate . . . . . . . . . . . . . . . . . . . . . . 26
Create a Certificate Signing Request in the DMA System . . . . . . . . . . 28
Install a Certificate in the DMA System . . . . . . . . . . . . . . . . . . . . . . . . . 29
DMA Operations Guide
iv Polycom, Inc.
Remove a Certificate from the DMA System . . . . . . . . . . . . . . . . . . . . 30
Security Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Session Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Local Password Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Local Account Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
Login Banner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
4 System Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
System Time . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
License . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Signaling Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Logging Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
History Record Retention . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 48
CMA Integration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Join CMA Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
System Configuration Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Add Licenses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Configure Signaling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Configure Logging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Configure History Record Retention . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
Join or Leave a Polycom CMA System . . . . . . . . . . . . . . . . . . . . . . . . . . 55
5 Device Management . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
MCUs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
Add MCU Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
Edit MCU Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
MCU Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 64
MCU Pools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
Add MCU Pool Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
Edit MCU Pool Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
MCU Pool Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
MCU Pool Orders . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
Add MCU Pool Order Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
Edit MCU Pool Order Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
MCU Pool Order Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 73
6 Conference Setup . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Conference Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Contents
Polycom, Inc. v
Two Types of Templates . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75
Template Priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
About Conference IVR Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
About Cascading . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
Conference Templates List . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Add Conference Template Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 79
Edit Conference Template Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . 87
Select Layout Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Conference Templates Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
Conference Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96
Calendaring Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 97
7 Enterprise Directory Integration . . . . . . . . . . . . . . . . . . . 101
Enterprise Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101
Enterprise Directory Integration Procedure . . . . . . . . . . . . . . . . . . . . . . . . 106
Understanding Base DN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109
Adding Passcodes for Enterprise Users . . . . . . . . . . . . . . . . . . . . . . . . . . . 111
About the System’s Directory Queries . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113
8 Site Topology Configuration . . . . . . . . . . . . . . . . . . . . . . 119
About Site Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 119
Sites . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120
Site Information Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120
Add Site Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121
Edit Site Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121
Add Subnet Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
Edit Subnet Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
Site Links . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Add Site Link Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Edit Site Link Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
Site-to-Site Exclusions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Add Site-to-Site Exclusion Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . 124
Network Clouds . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Add MPLS Cloud Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125
Edit MPLS Cloud Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126
Site Topology Configuration Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . 126
9 Users and Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129
User Roles Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130
DMA Operations Guide
vi Polycom, Inc.
Adding Users Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131
Users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
Add User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133
Edit User Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 135
Conference Rooms Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137
Add Conference Room Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
Edit Conference Room Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139
Users Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
Conference Rooms Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143
Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144
Import Enterprise Groups Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . 145
Edit Group Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147
Enterprise Groups Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 148
10 System Operations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 151
Management and Maintenance Overview . . . . . . . . . . . . . . . . . . . . . . . . . 151
Administrator Responsibilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152
Administrative Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152
Auditor Responsibilities . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 153
Auditor Best Practices . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 153
Recommended Regular Maintenance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 153
Dashboard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156
Monitoring Login Sessions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
Change Password Dialog Box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 160
Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
System Log Files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 163
System Logs Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
Backing Up and Restoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
Backup and Restore Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 166
Upgrading the Software . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 170
Upgrade Procedures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171
Adding a Second Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174
Expanding an Unpatched System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 174
Expanding a Patched System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
Replacing a Failed Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 176
Shutting Down and Restarting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177
11 System Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
Call History Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
Export History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180
Contents
Polycom, Inc. vii
Call Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180
Property Changes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181
Conference History Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181
Export History . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182
Associated Calls . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182
Conference Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182
Property Changes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183
Export CDR Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183
Enterprise Directory Integration Report . . . . . . . . . . . . . . . . . . . . . . . . . . . 186
Orphaned Groups and Users Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 188
Conference Room Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 190
Export Conference Room Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
Enterprise Passcode Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
Export Enterprise Passcode Errors Report . . . . . . . . . . . . . . . . . . . . . . . . . 194
Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197
DMA Operations Guide
viii Polycom, Inc.
Polycom, Inc. 1
1
Polycom
®
DMA
7000 System
Overview
This chapter provides an overview of the Polycom
®
Distributed Media
Application™ (DMA™) 7000 system. It includes these topics:
Introduction to the Polycom DMA System
Polycom Solution Support
Working in the Polycom DMA System
Open Source Software
Introduction to the Polycom DMA System
The Polycom DMA system is a highly reliable and scalable multipoint
conferencing solution based on the Polycom
®
Proxias™ application server. It
uses advanced routing policies to distribute audio and video calls among
multiple media servers (Multipoint Control Units, or MCUs), creating a single
resource pool. The system acts much like a virtual MCU, greatly simplifying
video conferencing resource management and improving efficiency.
The Polycom DMA system integrates with your enterprise directory,
automating the task of provisioning users for video conferencing. Combined
with its advanced resource management, this makes reservationless video
conferencing on a large scale feasible and efficient, reducing or eliminating the
need for conference scheduling.
The Polycom DMA system’s ability to handle multiple MCUs as a single
resource pool makes it highly scalable. To expand the system, you can add
MCUs on the fly without impacting end users and without requiring
re-provisioning.
DMA Operations Guide Introduction to the Polycom DMA System
2 Polycom, Inc.
Two-node Cluster Configuration
The two-server configuration of the Polycom DMA system is designed to have
no single point of failure within the system that could cause the service to
become unavailable. To support this, the system is configured as a cooperative
active/active two-node cluster. Both servers are actively registered and can
accept and process calls.
The H.323 network topology and choice of gatekeeper determine which server
receives a call. When a Polycom CMA system is acting as the gatekeeper, it
routes calls destined for the Polycom DMA system to the first server that it
finds available. If the first server isn’t available, it automatically routes the call
to the second server.
In the event of a single server (node) failure, two things happen:
All current calls that are being routed through the failed node are
terminated. These users simply need to redial the same number. The
gatekeeper automatically routes them to the remaining Polycom DMA
system server and they’re placed back into conference.
If the failed server is the active web host for the system management
interface, the active user interface sessions end, the web host address
automatically migrates to the remaining server, and it becomes the active
web host. Administrative users can then log back into the system at the
same URL. The system can always be administered via the same address,
regardless of which server is actually the web host.
The Polycom DMA system continuously monitors the used and available
resources on each MCU. If an MCU suffers a catastrophic failure, the Polycom
DMA system adjusts its internal resource counts. All the calls and conferences
on the failed MCU are terminated. But as in a server failure, callers can dial
back into the system using the exact same number that they used for their
initial dial-in. The Polycom DMA system then relocates their new conference
to the best available MCU (provided that there is still sufficient MCU capacity
remaining in the system).
The internal databases within each Polycom DMA system server are fully
replicated to the other node in the cluster. If a catastrophic failure of one of the
database engines occurs, the system automatically switches itself over to use
the database on the other server.
Single-server Configuration
The Polycom DMA system is also available in a single-server configuration.
This configuration offers all the advantages of the Polycom DMA system
except the redundancy and fault tolerance at a lower price. It can be upgraded
to a two-server configuration at any time.
This manual generally assumes a redundant two-node cluster. Where there
are significant differences between the two configurations, those are spelled
out.
Polycom Solution Support Polycom
®
DMA
7000 System Overview
Polycom, Inc. 3
Polycom Solution Support
Polycom Implementation and Maintenance services provide support for
Polycom solution components only. Additional services for supported
third-party Unified Communications (UC) environments integrated with
Polycom solutions are available from Polycom Global Services and its certified
Partners. These additional services will help customers successfully design,
deploy, optimize, and manage Polycom visual communications within their
UC environments.
Professional Services for Microsoft Integration is mandatory for Polycom
Conferencing for Microsoft Outlook and Microsoft Office Communications
Server integrations. For additional information, please see
http://www.polycom.com/services/professional_services/index.html or
contact your local Polycom representative.
Working in the Polycom DMA System
This section includes some general information you should know when
working in the Polycom DMA system. It includes these topics:
Polycom DMA System Management Interface Access
Video Tour
Field Input Requirements
Settings Dialog Box
Polycom DMA System Management Interface Access
The Polycom DMA system has three system user roles that provide access to
the management and operations interface. The functions you can perform and
parts of the interface you can access depend on your user role or roles:
DMA Operations Guide Working in the Polycom DMA System
4 Polycom, Inc.
Menu/Icon Admin Provisioner Auditor
Home. Returns to the Dashboard.
Operations >
Users
a
Groups
Sessions
MCUs
Power Management
Backup and Restore
Upgrade Management
Configuration > System >
Network
System Time
License
Certificate Management
Security Configuration
Enterprise Directory
Signaling Configuration
Logging Configuration
History Record Retention
Session Configuration
Local Password Requirements
Local Account Configuration
CMA Integration
Login Banner
Configuration > MCU >
MCUs
MCU Pools
MCU Pool Orders
Working in the Polycom DMA System Polycom
®
DMA
7000 System Overview
Polycom, Inc. 5
Configuration > Conference Setup >
Conference Templates
Conference Settings
Calendaring Service
Configuration > Site Topology >
Sites
Site Links
Site-to-Site Exclusions
Network Clouds
Reports >
Call History
Conference History
Enterprise Directory Integration
b
Enterprise Passcode Errors
Orphaned Groups and Users
Conference Room Errors
b
Tools >
Ping, Traceroute, Top, I/O Stats, SAR
System Log Files
Help >
About DMA 7000
Video Tour
Help Contents
Settings. Displays Settings Dialog
Box.
Log Out. Logs you out of the Polycom
DMA system.
Help. Opens the online help topic for
the page you’re viewing.
a. Must be an enterprise user to see enterprise users. Provisioners can’t add or remove roles
and can’t edit user accounts with explicitly assigned roles (Administrator, Provisioner, or
Auditor).
b. Must be an enterprise user to view this report.
Menu/Icon Admin Provisioner Auditor
DMA Operations Guide Open Source Software
6 Polycom, Inc.
Video Tour
When you log into the Polycom DMA system, it offers to show an introductory
video tour. You can access the Video Tour page at any time by selecting Help
> Video Tour. The video begins playing immediately. Use the links on the left
to jump to a specific section.
Field Input Requirements
While every effort was made to internationalize the Polycom DMA system, not
all system fields accept Unicode entries. If you work in a language other than
English, be aware that some fields accept only ASCII characters.
Settings Dialog Box
The Settings dialog box shows you your user name and information about the
server you’re logged into. In addition, you can change the text size used in the
Polycom DMA system interface. Note that larger text sizes will affect how
much you can see in a given window or screen size and may require frequent
scrolling.
Open Source Software
The Polycom DMA system uses several open source software packages,
including the CentOS operating system. CentOS is an enterprise-class Linux
distribution that contains hundreds of open-source components. For more
information about CentOS, visit http://www.centos.org/.
The packages containing the source code and the licenses for all the
open-source software, including CentOS and its components, are included on
the Polycom DMA system software DVD, mostly in the
/SRPMS
directory.
Modifying Open Source Code
The LGPL v2.1 license allows you to modify the LGPL code we use, recompile
the modified code, and re-link it with our proprietary code. Note that although
you’re free to modify the LGPL modules used in the Polycom DMA system in
any way you wish, we cannot be responsible if the changes you make impair
the system.
To replace an LGPL library with your modified version
1 On the DMA DVD, find the source code for the module you want to
modify.
2 Modify the source code and compile it.
Open Source Software Polycom
®
DMA
7000 System Overview
Polycom, Inc. 7
3 Go to Configuration > System > Security Settings, select Allow Linux
console access, and click Update.
4 Contact Polycom Global Services for the root password for the Polycom
DMA server.
5 Use ssh to log into the server as root.
6 Upload the modified software via uget or scp.
7 Find the module you’re replacing and install the new version to that
location.
8 Reboot the system.
License Information
The following table contains license information for the open source software
packages used in the Polycom DMA system. Note that the source code and the
licenses for all the open-source software, including CentOS and its
components, are included on the Polycom DMA system software DVD. This
list is provided as a convenient reference.
Software Name License Link
Axis Apache License,
Version 2.0
http://ws.apache.org/LICENSE.txt
bsf Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
CentOS Multiple http://www.centos.org/
commons-beanutils Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-cli Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-collections Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-configuration Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-digester Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-discovery Apache License,
Version 2.0
http://ws.apache.org/LICENSE.txt
commons-fileupload Apache License,
Version 2.0
http://ws.apache.org/LICENSE.txt
commons-httpclient Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
DMA Operations Guide Open Source Software
8 Polycom, Inc.
commons-io Apache License,
Version 2.0
http://ws.apache.org/LICENSE.txt
commons-jexl Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-jxpath Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-lang Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-logging Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
commons-pool Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
dom4j BSD-style http://www.dom4j.org/license.html
drools Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
Gsbase GSBase Software
License
http://gsbase.sourceforge.net/license.html
Hibernate Annotations LGPLv2.1 http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
Hibernate Core LGPLv2.1 http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
HyperSQL HSQL
Development
Group License
http://hsqldb.org/web/hsqlLicense.html
jamon BSD-style http://jamonapi.sourceforge.net/#JAMonLicense
Java JRE Sun Microsystems,
Binary Code
license (BCL)
http://www.java.com/en/download/license.jsp
JavaBeans Activation
Framework
Sun license https://cds.sun.com/is-bin/INTERSHOP.enfinity/WFS/CDS-CDS_
Developer-Site/en_US/-/USD/ViewLicense-Start?LicenseUUID=
mtrACUFBzm4AAAEYkcI5AXh_&ProductUUID=zFnACUFBlVoA
AAEYhxc5AXt.&cnum=&evsref=&sln=
JavaMail Sun License https://cds.sun.com/is-bin/INTERSHOP.enfinity/WFS/CDS-CDS_
Developer-Site/en_US/-/USD/ViewLicense-Start?LicenseUUID=
CgxIBe.odCIAAAElFCZzXgjJ&ProductUUID=r5dIBe.pitEAAAElU
JJh6wjK&cnum=&evsref=&sln=
JBOSS AS LGPLv2.1 http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
JCIFS LGPL v2.1 http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
JNA LGPL v2.1 http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
libxml2 MIT License http://www.opensource.org/licenses/mit-license.html
Software Name License Link
Open Source Software Polycom
®
DMA
7000 System Overview
Polycom, Inc. 9
Log4j Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
Mysql Commercial
License
http://www.mysql.com/about/legal/licensing
NSS Mozilla Public
License v1.1
http://www.mozilla.org/projects/security/pki/nss/faq.html#q3.1
NSS-tools Mozilla Public
License v1.1
http://www.mozilla.org/projects/security/pki/nss/faq.html#q3.1
NTP Open Software
License v3.0
http://www.opensource.org/licenses/ntp-license.php
OpenDS Common
Development and
Distribution
License (CDDL)
https://opends.dev.java.net/OpenDS.LICENSE
OpenSSH OpenSSH v1.19 http://www.openssh.org/
OpenSSL OpenSSL http://www.openssl.org/source/license.html
Python Python Software
Foundation
License Version 2
http://www.python.org/download/releases/2.6.2/license/
SNMP4j Apache License,
Version 2
http://ws.apache.org/LICENSE.txt
Sudo Sudo http://www.gratisoft.us/sudo/license.html
Xerces2 Apache License,
Version 2.0
http://www.apache.org/licenses/LICENSE-2.0
Software Name License Link
DMA Operations Guide Open Source Software
10 Polycom, Inc.
Polycom, Inc. 11
2
Polycom
®
DMA
System Initial
Configuration Summary
This chapter describes the configuration tasks required to complete your
implementation of a new Polycom
®
Distributed Media Application™
(DMA™) 7000 system once installation and initial network configuration are
complete.
This chapter assumes you’ve completed the Getting Started Guide’s server
configuration procedure, logged into the Polycom DMA system’s
management interface, and verified that the Network Status section of the
Dashboard shows (for a two-server configuration) two cluster members, with
healthy enterprise and private network status for both.
Initial configuration includes the following topics:
System configuration
Add DNS Records for Polycom DMA System
License the Polycom DMA System
Configure Signaling
Set Up Security
Set Up MCUs
Connect to an Enterprise Directory
Set Up Conference Templates
Confirming configuration
Test the System
Each topic describes the task, provides background and overview information
for it, and where appropriate, links to specific step-by-step procedures to
follow in order to complete the task.
DMA Operations Guide Add DNS Records for Polycom DMA System
12 Polycom, Inc.
Add DNS Records for Polycom DMA System
In order to access your Polycom DMA system by its host name instead of by
IP address, you must create an alias record (or A record) on your DNS server.
For a two-node cluster configuration, at a minimum, create a record for the
virtual IP address and host name assigned to the Polycom DMA system. We
recommend that you create an alias record for each of the system’s three IP
addresses.
The DNS server(s) should also have entries for your Active Directory server (if
different from the DNS server) and gatekeeper.
License the Polycom DMA System
The Polycom DMA system license you purchased specifies how many and
what type of MCUs the system can use as conferencing resources. You should
have received either one or two license numbers, depending on whether you
ordered a single-server system or a two-server cluster.
You must obtain an activation key code for each server from the Polycom
Resource Center. You enter the server’s serial number and the license number
that you were given for that server, and the PRC generates an activation key
for that server. For a cluster, you repeat the process using the other server’s
serial number and its license number. Installing the activation keys activates
the licenses for your system.
Note
These topics outline the configuration tasks that are generally required. You may
wish to complete other optional configuration tasks, including:
Integrate with a Polycom CMA system (see “CMA Integration” on page 49) or
enter site topology information (see “Site Topology Configuration” on page 119).
Enable cascading of conferences (see “About Cascading” on page 78).
Configure calendaring service (“Calendaring Service” on page 97).
Note
Depending on local DNS configuration, the host name could be the DMA system’s
fully qualified domain name (FQDN) or a shorter name that DNS can resolve. For
some features, such as Calendaring Service, it’s imperative that the virtual host’s
FQDN can be resolved in DNS, especially by the Exchange server.
  • Page 1 1
  • Page 2 2
  • Page 3 3
  • Page 4 4
  • Page 5 5
  • Page 6 6
  • Page 7 7
  • Page 8 8
  • Page 9 9
  • Page 10 10
  • Page 11 11
  • Page 12 12
  • Page 13 13
  • Page 14 14
  • Page 15 15
  • Page 16 16
  • Page 17 17
  • Page 18 18
  • Page 19 19
  • Page 20 20
  • Page 21 21
  • Page 22 22
  • Page 23 23
  • Page 24 24
  • Page 25 25
  • Page 26 26
  • Page 27 27
  • Page 28 28
  • Page 29 29
  • Page 30 30
  • Page 31 31
  • Page 32 32
  • Page 33 33
  • Page 34 34
  • Page 35 35
  • Page 36 36
  • Page 37 37
  • Page 38 38
  • Page 39 39
  • Page 40 40
  • Page 41 41
  • Page 42 42
  • Page 43 43
  • Page 44 44
  • Page 45 45
  • Page 46 46
  • Page 47 47
  • Page 48 48
  • Page 49 49
  • Page 50 50
  • Page 51 51
  • Page 52 52
  • Page 53 53
  • Page 54 54
  • Page 55 55
  • Page 56 56
  • Page 57 57
  • Page 58 58
  • Page 59 59
  • Page 60 60
  • Page 61 61
  • Page 62 62
  • Page 63 63
  • Page 64 64
  • Page 65 65
  • Page 66 66
  • Page 67 67
  • Page 68 68
  • Page 69 69
  • Page 70 70
  • Page 71 71
  • Page 72 72
  • Page 73 73
  • Page 74 74
  • Page 75 75
  • Page 76 76
  • Page 77 77
  • Page 78 78
  • Page 79 79
  • Page 80 80
  • Page 81 81
  • Page 82 82
  • Page 83 83
  • Page 84 84
  • Page 85 85
  • Page 86 86
  • Page 87 87
  • Page 88 88
  • Page 89 89
  • Page 90 90
  • Page 91 91
  • Page 92 92
  • Page 93 93
  • Page 94 94
  • Page 95 95
  • Page 96 96
  • Page 97 97
  • Page 98 98
  • Page 99 99
  • Page 100 100
  • Page 101 101
  • Page 102 102
  • Page 103 103
  • Page 104 104
  • Page 105 105
  • Page 106 106
  • Page 107 107
  • Page 108 108
  • Page 109 109
  • Page 110 110
  • Page 111 111
  • Page 112 112
  • Page 113 113
  • Page 114 114
  • Page 115 115
  • Page 116 116
  • Page 117 117
  • Page 118 118
  • Page 119 119
  • Page 120 120
  • Page 121 121
  • Page 122 122
  • Page 123 123
  • Page 124 124
  • Page 125 125
  • Page 126 126
  • Page 127 127
  • Page 128 128
  • Page 129 129
  • Page 130 130
  • Page 131 131
  • Page 132 132
  • Page 133 133
  • Page 134 134
  • Page 135 135
  • Page 136 136
  • Page 137 137
  • Page 138 138
  • Page 139 139
  • Page 140 140
  • Page 141 141
  • Page 142 142
  • Page 143 143
  • Page 144 144
  • Page 145 145
  • Page 146 146
  • Page 147 147
  • Page 148 148
  • Page 149 149
  • Page 150 150
  • Page 151 151
  • Page 152 152
  • Page 153 153
  • Page 154 154
  • Page 155 155
  • Page 156 156
  • Page 157 157
  • Page 158 158
  • Page 159 159
  • Page 160 160
  • Page 161 161
  • Page 162 162
  • Page 163 163
  • Page 164 164
  • Page 165 165
  • Page 166 166
  • Page 167 167
  • Page 168 168
  • Page 169 169
  • Page 170 170
  • Page 171 171
  • Page 172 172
  • Page 173 173
  • Page 174 174
  • Page 175 175
  • Page 176 176
  • Page 177 177
  • Page 178 178
  • Page 179 179
  • Page 180 180
  • Page 181 181
  • Page 182 182
  • Page 183 183
  • Page 184 184
  • Page 185 185
  • Page 186 186
  • Page 187 187
  • Page 188 188
  • Page 189 189
  • Page 190 190
  • Page 191 191
  • Page 192 192
  • Page 193 193
  • Page 194 194
  • Page 195 195
  • Page 196 196
  • Page 197 197
  • Page 198 198
  • Page 199 199
  • Page 200 200
  • Page 201 201
  • Page 202 202
  • Page 203 203
  • Page 204 204
  • Page 205 205
  • Page 206 206
  • Page 207 207
  • Page 208 208
  • Page 209 209
  • Page 210 210

Poly Security - Firewall Traversal User guide

Type
User guide
This manual is also suitable for

Ask a question and I''ll find the answer in the document

Finding information in a document is now easier with AI